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Art Unit: 2168 

DETAILED ACTION 

Response to Amendment 

1 . In the amendment filed on 9/1 5/2008, claims 1,6,8,1 6-1 7, 20, 29-30, 32-33, 36- 
37, 40-42, 44, 52-53, 56, 59, 64-67, 70-71, 73-75, 80-81, 86, and 92-97 have been 
amended. The currently pending claims considered below are Claims 1-99. 

Claim Rejections - 35 USC § 103 

2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

3. Claims 37-70 are rejected under 35 U.S.C. 103(a) as being anticipated by 
Newman et a. US Patent 7,266,699 B2) in view of Lei et al. (US Publication 
2004/02551 33 A1) 

As per claim 37, Newman teaches A database system providing 
automated encryption support for column data," (see Abstract and column 1 lines 46-62) 
"the system comprising: a processor" (column 4 lines 28-37) 
"a memory coupled to the processor;" (column 4 lines 28-48) 
a parser that supports Structured Query Language (SQL) extensions for creating 
and managing named column encryption keys, and for creating and managing database 
tables with encrypted column data;" (column 2 lines 20-27, column 4 lines 28-44, 
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column 4 line 57 - column 5 line 12, column 5 lines 46-54, wherein a key management 
system which utilizes SQL as the standard query language provides encryption key 
management) 

"and an execution unit, operating in response to SQL statements parsed by the 
parser, for creating a particular named column encryption key," (column 2 lines 28-40, 
column 7 lines 45-52, wherein a command to encrypt a column causes a key to be 
created) 

"and for automatically decrypting the particular column data for use by a 
subsequent database operation that requires the particular column data that has been 
encrypted." (column 5 lines 37-54, column 8 lines 30-63, wherein encrypted data is 
automatically decrypted in response to an authorized user accessing the encrypted 
column data) 

While Newman teaches that encrypted database tables are able to be viewed 
and processed by authorized users (column 2 lines 41-57, column 7 lines 16-25, column 
7 lines 45-56), Newman does not specifically teach "for creating one or more database 
tables having particular column data encrypted with said particular named column 
encryption key," 

Lei teaches "for creating a database table having particular column data 
encrypted with said particular column encryption key," 

(paragraphs 0019, 0020, 0066, 0067 wherein a column is selected to be 
encrypted and stored in the database, to create encrypted data tables based on keys) 
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It would have been obvious for one of ordinary skill in the art to combine 
Newman's method of providing a transparent encryption infrastructure for databases 
with Lei's method of storing and updating encrypted tables. This gives the user the 
ability to save encrypted data in the database. The motivation for doing so would be to 
more efficiently provide transparent access to user applications accessing sensitive 
data protected by encryption (paragraphs 0007, 0008) 

As per claim 38, Newman teaches columns that are not specified to be 
encrypted are stored in unencrypted format, for minimizing encryption overhead, 
(column 7 lines 17-24) 

As per claim 39, Newman teaches the automated encryption support operates 
as an internal built-in feature of the database system, without use of an add-on library, 
(column 3 lines 52-62) 

As per claim 40, Newman teaches the SQL statement specifying creation of a 
particular named encryption key is received from a user serving as a system security 
officer, (column 10 lines 23-31) 

As per claim 41 , Lei teaches the SQL statement specifying creation of one or 
more database tables may be received from a user other than the system security 
officer, (paragraph 0035) 

As per claim 42, Newman teaches the SQL statement specifying creation of a 
particular named encryption key comprises a CREATE ENCRYPTION KEY command, 
(column 7 lines 45-52) 



Application/Control Number: 1 0/71 1 ,929 Page 5 

Art Unit: 2168 

As per claim 43, Newman teaches the CREATE ENCRYPTION KEY command 
includes: 

CREATE ENCRYPTION KEY keyname 
[AS DEFAULT] [FOR algorithm] 
[WITH [KEYLENGTH keysize] 
[PASSWD passphrase] 
[INIT_VECTOR [RANDOM | NULL]] 
[PAD [RANDOM | NULL]]] 

as its syntax, (column 8 lines 5-22) 

As per claim 44, Lei teaches the SQL statement specifying creation of one or 
more database tables having particular column data encrypted comprises a CREATE 
TABLE command that allows specification of one or more columns to be encrypted, 
(paragraph 0066) 

As per claim 45, Lei teaches the CREATE TABLE command includes: 
CREATE TABLE tablename 

(colnamel datatype [encrypt [with [db.[owner].]keyname], 
colname2 datatype [encrypt [with [db.[owner].]keyname]) 

as its syntax, (paragraph 0066) 

As per claim 46, Lei teaches a module for receiving an SQL statement 
specifying alteration of a previously created database table so as to encrypt particular 
column data, (paragraph 0061 , 0062, 0063) 

As per claim 47, Lei teaches the SQL statement specifying alteration of a 
previously created database table comprises an ALTER TABLE command, (paragraph 
0061 , 0062, 0063) 

As per claim 48, Lei teaches the ALTER TABLE command includes: 

ALTER TABLE tablename MODIFY column name 
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[[datatype] [null|not null]] 

[decrypt | encrypt [with [db.[owner].]keyname]] 

as its syntax, (paragraph 0061 , 0062, 0063) 

As per claim 49, Newman teaches the encryption support works transparently 
with existing database applications, (column 4 lines 57-64) 

As per claim 50, Newman teaches the database system includes a database 
server and one or more database clients, and wherein the encryption support is 
provided by the database server, (column 4 lines 38-48) 

As per claim 51 , Newman teaches the database system includes a back-end 
server tier and a middleware tier, and wherein the encryption support is provided by the 
back-end server tier, (column 4 lines 38-48) 

As per claim 52, Newman teaches the system protects the particular named 
column encryption key with a user-supplied password, (column 2 lines 52-59, column 6 
lines 11-21) 

As per claim 53, Newman teaches the user-supplied password must be supplied 
before the system allows use of the particular named column encryption key for 
database operations, (column 6 lines 11-21) 

As per claim 54, Newman teaches the user-supplied password is supplied using 
a SET ENCRYPTION PASSWD command, (column 10 lines 23-62) 

As per claim 55, Newman teaches the SET ENCRYPTION PASSWD command 
includes: 

SET ENCRYPTION PASSWD password FOR keyname 
as its syntax, (column 10 lines 23-62) 
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As per claim 56, Newman teaches a user seeking to decrypt column data must 
supply said user-supplied password and must have necessary database privileges 
before decrypting the column data with the particular named column encryption key. 
(column 6 line 40 - column 7 line 5) 

As per claim 57, Newman teaches providing a command to grant decryption 
permission to others, (column 10 lines 23-62) 

As per claim 58, Newman teaches the command to grant decryption permission 
includes: 

GRANT DECRYPT ON table.column TO user_or_role_list 
as its syntax, (column 10 lines 23-62) 

As per claim 59, Newman teaches the database system internally stores in 
encrypted format any named column encryption keys that have been created. (Column 
5 lines 12-37) 

As per claim 60, Newman teaches the database system stores encrypted 
column data internally as variable binary (VARBINARY) data, (column 10 lines 19-23) 

As per claim 61, Newman teaches the database system presents users a user- 
defined field type for column data that has been encrypted, even though the column 
data is stored internally as variable binary data, (column 7 lines 16-24) 

As per claim 62, Newman teaches the database system preserves any user- 
defined data type for the particular column data so that the database system employs a 
correct data type for processing queries and returning query results, (column 7 line 64 - 
column 8 line 3) 
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As per claim 63, Newman teaches the database system stores the user-defined 
data type for the particular column data in a system catalog of the database system, 
(column 7 line 64 - column 8 line 3, column 8 line 30-35) 

As per claim 64, Newman teaches the particular named column encryption key 
created comprises a symmetric encryption key. (column 2 lines 41-52) 

As per claim 65, Newman teaches a single column named encryption key is 
used for each column to be encrypted, (column 4 lines 61-64) 

As per claim 66, Newman teaches the particular named column encryption key 
is itself encrypted to a key-encrypting key constructed from a user-supplied password, 
(column 5 lines 13-30) 

As per claim 67, Newman teaches the particular named column encryption key 
is itself stored on disk in encrypted format using Advanced Encryption Standard (AES) 
encryption, (column 4 lines 19-28, column 5 lines 31-37) 

As per claim 68, Newman teaches the user-supplied password may comprise a 
hex literal, (column 10 lines 8-18) 

As per claim 69, Newman teaches the user-supplied password is itself 
transformed into a symmetric encryption key, using a random salt, static internal data 
and SHA-1 hashing algorithm, (column 4 lines 19-28, column 10 lines 30-62) 

As per claim 70, Newman teaches said Structured Query Language (SQL) 
extensions for creating and managing column encryption keys include a clause for 
instructing the database system to create a default key for encrypting columns, (column 
6 lines 11-22) 
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4. Claims 1-36 and 71-99 are rejected under 35 U.S.C. 103(a) as being anticipated 
by Newman et a. US Patent 7,266,699 B2) in view of Sato et al. (US Patent 7,093,137 
B1) and further in view of Lei et al. (US Publication 2004/0255133 A1) 

As per claim 1, Newman teaches "In a database system, a method for providing 
automated encryption support for column data," (see Abstract and column 1 lines 46-62) 

"the method comprising: defining Structured Query Language (SQL) extensions 
for creating and managing column encryption keys, and for creating and managing 
database tables with encrypted column data;" (column 2 lines 20-27, column 4 lines 28- 
44, column 4 line 57 - column 5 line 12, column 5 lines 46-54, wherein a key 
management system which utilizes SQL as the standard query language provides 
encryption key management) 

"receiving an SQL statement specifying creation of a named encryption key;" 
(column 2 lines 28-40, column 7 lines 45-52, wherein a command to encrypt a column 
causes a key to be created) 

"and in response to a subsequent database operation that requires particular 
column data that has been encrypted with said named encryption key, automatically 
decrypting the particular column data with said named encryption key, so that the 
particular column data is available in decrypted form for use by the database operation." 
(column 5 lines 37-54, column 8 lines 30-63, wherein encrypted data is automatically 
decrypted in response to an authorized user accessing the encrypted column data) 
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Newman does not specifically teach that the named encryption key is capable of 
encrypting multiple columns. 

Sato teaches the named encryption key is capable of encrypting multiple 
columns (column 3 lines 32-44, column 15 lines 13-57, wherein a common encryption 
key is utilized to refer to multiple column items). 

It would have been obvious for one of ordinary skill in the art to combine 
Newman's method of providing a transparent encryption infrastructure for databases 
with Sato's method of providing a common encryption key for frequently used columns 
in a database table. This gives the user the another layer of security while improving 
upon a method to call up encrypted columns frequently called in a database. The 
motivation for doing so would be to lower the processing requirements needed in an 
encryption/decryption system while still guaranteeing security (column 2 lines 1-14) 

While Newman teaches that encrypted database tables are able to be viewed 
and processed by authorized users (column 2 lines 41-57, column 7 lines 16-25, column 
7 lines 45-56), Newman does not specifically teach "receiving an SQL statement 
specifying creation of a database table having particular column data encrypted with 
said particular column encryption key;" 

Lei teaches "receiving an SQL statement specifying creation of a database table 
having particular column data encrypted with said particular column encryption key;" 
(paragraphs 0019, 0020, 0066, 0067 wherein a column is selected to be encrypted and 
stored in the database, to create encrypted data tables based on keys) 
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It would have been obvious for one of ordinary skill in the art to combine 
Newman's method of providing a transparent encryption infrastructure for databases 
and Sato's method of providing a common encryption key for frequently used columns 
in a database table with Lei's method of storing and updating encrypted tables. This 
gives the user the ability to save encrypted data in the database. The motivation for 
doing so would be to more efficiently provide transparent access to user applications 
accessing sensitive data protected by encryption (paragraphs 0007, 0008) 

As per claim 2, Newman teaches "columns that are not specified to be 
encrypted are stored in unencrypted format, for minimizing encryption overhead." 
(column 7 lines 17-24) 

As per claim 3, Newman teaches "the automated encryption support operates 
as an internal built-in feature of the database system, without use of an add-on library." 
(column 3 lines 52-62) 

As per claim 4, Newman teaches the SQL statement specifying creation of a 
named encryption key is received from a user serving as a system security officer, 
(column 10 lines 23-31) 

As per claim 5, Lei teaches the SQL statement specifying creation of a database 
table may be received from a user other than the system security officer, (paragraph 
0035) 

As per claim 6, Newman teaches the SQL statement specifying creation of a 
named encryption key comprises a CREATE ENCRYPTION KEY command, (column 7 
lines 45-52) 
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As per claim 7, Newman teaches the CREATE ENCRYPTION KEY command 
includes: 

CREATE ENCRYPTION KEY keyname 
[AS DEFAULT] [FOR algorithm] 
[WITH [KEYLENGTH keysize] 
[PASSWD passphrase] 
[INIT_VECTOR [RANDOM | NULL]] 
[PAD [RANDOM | NULL]]] 

as its syntax, (column 8 lines 5-22) 

As per claim 8, Lei teaches the at least one SQL statement specifying creation 
of a database table having particular column data encrypted comprises a CREATE 
TABLE command that allows specification of one or more columns to be encrypted, 
(paragraph 0066) 

As per claim 9, Lei teaches the CREATE TABLE command includes: 
CREATE TABLE tablename 

(colnamel datatype [encrypt [with [db.[owner].]keyname], 
colname2 datatype [encrypt [with [db.[owner].]keyname]) 

as its syntax, (paragraph 0066) 

As per claim 10, Lei teaches receiving an SQL statement specifying alteration of 
a previously-created database table so as to encrypt particular column data, (paragraph 
0061 , 0062, 0063) 

As per claim 11, Lei teaches the SQL statement specifying alteration of a 
previously created database table comprises an ALTER TABLE command, (paragraph 
0061 , 0062, 0063) 

As per claim 12, Lei teaches the ALTER TABLE command includes: 

ALTER TABLE tablename MODIFY column name 
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[[datatype] [null|not null]] 

[decrypt | encrypt [with [db.[owner].]keyname]] 

as its syntax, (paragraph 0061 , 0062, 0063) 

As per claim 13, Newman teaches the encryption support works transparently 
with existing database applications. (column 4 lines 57-64) 

As per claim 14, Newman teaches the database system includes a database 
server and one or more database clients, and wherein method steps implementing the 
encryption support are embodied at the database server, (column 4 lines 38-48) 

As per claim 15, Newman teaches the database system includes a back-end 
server tier and a middleware tier, and wherein method steps implementing the 
encryption support are embodied at the back-end server tier, (column 4 lines 38-48) 

As per claim 16, Newman teaches after creation of the named encryption key, 
protecting the named encryption key with a user-supplied password, (column 2 lines 52- 
59, column 6 lines 11-21) 

As per claim 17, Newman teaches the user-supplied password must be supplied 
before the system allows use of the named encryption key for database operations, 
(column 6 lines 1 1-21) 

As per claim 18, Newman teaches the user-supplied password is supplied using 
a SET ENCRYPTION PASSWD command, (column 10 lines 23-62) 

As per claim 19, Newman teaches the SET ENCRYPTION PASSWD command 
includes: 

SET ENCRYPTION PASSWD password FOR keyname 
as its syntax, (column 10 lines 23-62) 
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As per claim 20, Newman teaches a user seeking to decrypt column data must 
supply said user-supplied password and must have necessary database privileges 
before decrypting the column data with the named encryption key. (column 6 line 40 - 
column 7 line 5) 

As per claim 21, Newman teaches the user-supplied password is supplied using 
a SET ENCRYPTION PASSWD command, (column 6 line 40 - column 7 line 5) 

As per claim 22, Newman teaches providing a command to grant decryption 
permission to others, (column 10 lines 23-62) 

As per claim 23, Newman teaches the command to grant decryption permission 
includes: 

GRANT DECRYPT ON table.column TO user_or_role_list 
as its syntax, (column 10 lines 23-62) 

As per claim 24, Newman teaches the database system internally stores in 
encrypted format any column encryption keys that have been created. Column 5 lines 
12-37) 

As per claim 25, Newman teaches the database system stores encrypted 
column data internally as variable binary (VARBINARY) data, (column 10 lines 19-23) 

As per claim 26, Newman teaches the database system presents users a user- 
defined field type for column data that has been encrypted, even though the column 
data is stored internally as variable binary data, (column 7 lines 16-24) 

As per claim 27, Newman teaches the database system preserves any user- 
defined data type for the particular column data so that the database system employs a 
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correct data type for processing queries and returning query results, (column 7 line 64 - 
column 8 line 3) 

As per claim 28, Newman teaches the database system stores the user-defined 
data type for the particular column data in a system catalog of the database system, 
(column 7 line 64 - column 8 line 3, column 8 line 30-35) 

As per claim 29, Newman teaches the named encryption key created comprises 
a symmetric encryption key. (column 2 lines 41-52) 

As per claim 30, Newman teaches a single column named encryption key is 
used for each column to be encrypted, (column 4 lines 61-64) 

As per claim 31 , Newman teaches a single column encryption key may be 
shared by multiple columns to be encrypted, (column 5 lines 13-30) 

As per claim 32, Newman teaches the named encryption key is itself encrypted 
to a key-encrypting key constructed from a user-supplied password, (column 5 lines 13- 
30) 

As per claim 33, Newman teaches the named encryption key is itself stored on 
disk in encrypted format using Advanced Encryption Standard (AES) encryption, 
(column 4 lines 19-28, column 5 lines 31-37) 

As per claim 34, Newman teaches the user-supplied password may comprise a 
hex literal, (column 10 lines 8-18) 

As per claim 35, Newman teaches the user-supplied password is itself 
transformed into a symmetric encryption key, using a random salt, internal static data, 
and SHA-1 hashing algorithm, (column 4 lines 19-28, column 10 lines 30-62) 
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As per claim 36, Newman teaches said Structured Query Language (SQL) 
extensions for creating and managing named encryption keys include a clause for 
instructing the database system to create a default key for encrypting columns, (column 
6 lines 11-22) 

As per claim 71, Newman teaches "In a database system, a method for 
encrypting column data," (see Abstract and column 1 lines 46-62) 

"the method comprising: in response to a first query language statement, creating 
a named encryption key for encrypting a particular column of a database table;" (column 
2 lines 28-40, column 7 lines 45-52, wherein a command to encrypt a column causes a 
key to be created) 

"and during a subsequent database operation requiring column data inserted to 
or selected from the particular column, automatically encrypting or decrypting the 
column data as necessary for carrying out the database operation." (column 5 lines 37- 
54, column 8 lines 30-63, wherein encrypted data is automatically decrypted in 
response to an authorized user accessing the encrypted column data) 

Newman does not specifically teach that the named encryption key being 
uniquely named so that it can be referenced within other query language statements. 

Sato teaches the named encryption key being uniquely named so that it can be 
referenced within other query language statements (column 3 lines 32-44, column 15 
lines 13-57, wherein a common encryption key is utilized to refer to multiple column 
items). 
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It would have been obvious for one of ordinary skill in the art to combine 
Newman's method of providing a transparent encryption infrastructure for databases 
with Sato's method of providing a common encryption key for frequently used columns 
in a database table. This gives the user the another layer of security while improving 
upon a method to call up encrypted columns frequently called in a database. The 
motivation for doing so would be to lower the processing requirements needed in an 
encryption/decryption system while still guaranteeing security (column 2 lines 1-14) 

While Newman teaches that encrypted database tables and columns are able to 
be viewed and processed by authorized users (column 2 lines 41-57, column 7 lines 16- 
25, column 7 lines 45-56), Newman does not specifically teach "in response to a second 
query language statement, encrypting the particular column using said encryption key;" 

Lei teaches "in response to a second query language statement, encrypting the 
particular column using said encryption key;" (paragraphs 0019, 0020, 0066, 0067 
wherein a column is selected to be encrypted and stored in the database, to create 
encrypted data tables based on keys) 

It would have been obvious for one of ordinary skill in the art to combine 
Newman's method of providing a transparent encryption infrastructure for databases 
and Sato's method of providing a common encryption key for frequently used columns 
in a database table with Lei's method of storing and updating encrypted tables. This 
gives the user the ability to save encrypted data in the database. The motivation for 
doing so would be to more efficiently provide transparent access to user applications 
accessing sensitive data protected by encryption (paragraphs 0007, 0008) 
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As per claim 72, Newman teaches assigning privileges to users for creating an 
encryption key for encrypting column data, (column 5 lines 3-12, column 10 lines 23-31) 

As per claim 73, Newman teaches in response to a request to create a named 
encryption key from a particular user, determining whether the particular user has 
sufficient privileges to create an encryption key. (column 5 lines 3-12, lines 38-54) 

As per claim 74, Newman teaches the named encryption key is itself encrypted 
to a key-encrypting key constructed from a user-supplied password, (column 5 lines 13- 
30) 

As per claim 75, Newman teaches the named encryption key is encrypted using 
Advanced Encryption Standard (AES) encryption, (column 4 lines 19-28, column 5 lines 
31-37) 

As per claim 76, Newman teaches the user-supplied password may comprise a 
hex literal, (column 10 lines 8-18) 

As per claim 77, Newman teaches the user-supplied password is itself 
transformed into a symmetric encryption key, using a random salt, static internal data 
and SHA-1 hashing algorithm, (column 4 lines 19-28, column 10 lines 30-62) 

As per claim 78, Newman teaches the database system stores encrypted 
column data internally as variable binary (VARBINARY) data, (column 10 lines 19-23) 

As per claim 79, Newman teaches columns of the database table that are not 
specified to be encrypted are stored in unencrypted format, (column 7 lines 17-24) 

As per claim 80, Newman teaches the system implements said first and second 
statements as SQL extensions for creating and managing named encryption keys and 
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for creating and managing database tables with encrypted column data, (column 10 
lines 23-31) 

As per claim 81, Newman teaches said SQL extensions include a CREATE 
ENCRYPTION KEY command for creating a named encryption key. (column 7 lines 45- 
52) 

As per claim 82, Newman teaches said CREATE ENCRYPTION KEY command 
includes attributes specifying an encryption key name and a user-supplied password, 
(column 7 lines 45-52, column 8 lines 5-22) 

As per claim 83, Lei teaches said SQL extensions include a CREATE TABLE 
command having an attribute that allows specification of at least one column to be 
encrypted, (paragraph 0066) 

As per claim 84, Lei teaches said CREATE TABLE command syntax includes 
attributes specifying a table name, one or more columns to be encrypted, and an 
encryption key name, (paragraph 0066) 

As per claim 85, Lei teaches said second query language statement includes a 
request specifying alteration of a previously-created table so as to encrypt particular 
column data, (paragraph 0061, 0062, 0063) 

As per claim 86, Newman teaches a user subsequently requiring use of the 
encrypted column data must provide a user-supplied password for unlocking the named 
encryption key for the particular column, (column 2 lines 52-59, column 6 lines 11-21) 

As per claim 87, Newman teaches receiving an SQL statement specifying 
creation of a default key encryption password, (column 6 lines 1 1-22) 
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As per claim 88, Newman teaches the SQL statement specifying creation of a 
default key encryption password specifies a default password value that is encrypted by 
a system stored procedure, for storage in a system table of a particular database, 
(column 6 lines 11-22) 

As per claim 89, Newman teaches receiving an SQL statement specifying 
creation of an encryption keypair. (column 2 lines 28-40) 

As per claim 90, Newman teaches the SQL statement specifying creation of an 
encryption keypair comprises a CREATE ENCRYPTION KEYPAIR command, (column 
10 lines 6-62) 

As per claim 91 , Newman teaches the CREATE ENCRYPTION KEYPAIR 

command includes: 

CREATE ENCRYPTION KEYPAIR keypairname 

[FOR algorithm] 

[WITH [KEYLENGTH keysize] 

[PASSWD passphrase | LOGIN_PASSWD] 

as its syntax, (column 10 lines 6-62) 

As per claim 92, Newman teaches receiving an SQL statement specifying 
alteration of a particular named encryption key or keypair. (column 10 lines 52-62) 

As per claim 93, Newman teaches receiving an SQL statement specifying 
dropping a particular named encryption key or keypair. (column 10 lines 62-65) 

As per claim 94, Newman teaches receiving an SQL statement granting rights to 
a particular named encryption key or keypair. (column 10 lines 6-62) 
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As per claim 95, Newman teaches receiving an SQL statement revoking said 
rights that have been granted to a particular named encryption key or keypair. (column 
10 lines 62-65) 

As per claim 96, Newman teaches the said rights granted for the particular 
named encryption key or keypair comprise SELECT query execution rights, for selecting 
encrypted data, (column 1 0 line 65 - column 1 1 line 1 6) 

As per claim 97, Newman teaches the said rights granted for the particular 
named encryption key or keypair comprise ALTER query execution rights, for altering 
the encryption key or keypair. (column 1 0 line 65 - column 1 1 line 1 6) 

As per claim 98, Newman teaches A computer-readable medium having 
processor-executable instructions for performing the method of claim 71 . (column 4 
lines 38-48) 

As per claim 99, Newman teaches A downloadable set of processor-executable 
instructions for performing the method of claim 71 . (column 4 lines 38-48) 

Response to Arguments 

5. Applicant's arguments, see page 9, filed 9/1 5/2008, with respect to the 35 USC 
101 rejection of claims 37-70 have been fully considered and are persuasive. The 35 
USC 101 rejection of claims 37-70 has been withdrawn. 

6. Applicant's arguments with respect to the 35 USC 103(a) rejection of claims 37- 
70 have been considered but they are not persuasive. 
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a. Examiner is entitled to give claim limitations their broadest reasonable 
interpretation in light of the specification. See MPEP 21 1 1 [R-l] 

Interpretation of Claims-Broadest Reasonable Interpretation 
During patent examination, the pending claims must be 'given the 
broadest reasonable interpretation consistent with the specification.' Applicant 
always has the opportunity to amend the claims during prosecution and broad 
interpretation by the examiner reduces the possibility that the claim, once issued, 
will be interpreted more broadly than is justified. In re Prater, 162 USPQ 541,550- 
51 (CCPA1969). 

b. Applicant's arguments is stated as Newman in view of Lei does not teach 
a named column encryption key. 

In regards to this argument, Examiner respectfully disagrees. While the 
arguments state that the named column encryption key can be a user specified 
string, Newman in column 2 lines 20-27, column 4 lines 28-44, column 4 line 57 - 
column 5 line 12, column 5 lines 46-54 teaches that encryption keys are stored 
for users, in regards to the data they are able to access. As stated in column 5 
lines 13-30 teaches that encryption is accomplished on a column level, with a key 
being generated for the columns selected to be encrypted. The term "named" is 
interpreted to mean that the key is identified somehow, and the user is able to 
call a key with its identifier, which the prior art of Newman shows. As shown in 
figure 1 reference 5, a column is encrypted with a key, which is then able to be 
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utilized by a user with the correct access privileges. Therefore, Newman teaches 
a column encryption key with an identifier that a user is able to utilize. 

7. Applicant's arguments with respect to the 35 USC 103(a) rejection of claims 1-36 
and 71-99 have been considered but are moot in view of the new ground(s) of rejection. 
The amendments to the claims necessitated new grounds of rejection. 

a. As stated above, Newman discloses a named column encryption key that 
a user is able to utilize in the encryption and decryption of database tables, 
based on the user. The newly cited prior art of Sato is incorporated into the prior 
art of Newman to disclose that named encryption keys are capable of encrypting 
multiple columns, as Sato, in column 3 lines 32-44, column 15 lines 13-57, 
wherein a common encryption key is utilized to refer to column items that a user 
frequently calls. In this way, the encryption keys of Newman may then have a 
specific identifier as that of Sato, and can be refered to by multiple columns, as 
well as be utilized by a user utilizing the encryption key for database operations. 

Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See M PEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 
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A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to DANGELINO N. GORTAYO whose telephone number is 
(571)272-7204. The examiner can normally be reached on M-F 7:30-4:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Tim T. Vo can be reached on (571 )272-3642. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Dangelino N Gortayo/ /Tim T. Vo/ 

Examiner, Art Unit 2168 Supervisory Patent Examiner, Art 
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